Talent.com
This job offer is not available in your country.
Information Security & Control Analyst II

Information Security & Control Analyst II

Antal InternationalPune, Maharashtra, India
12 hours ago
Job description

Job Description

Position : Information Security & Control Analyst II

Location : Pune, MH

Experience Range : Relevant 3 to 5 years

Mode of work : 5 days (office)

Job Mission :

The Information Security & Control Analyst II or IT Security Officer (ISO) is responsible for implementing, continuously improving, and maintaining the HPS Payment Services information security program. The position requires strong expertise in information security management, as well as in-depth knowledge of security standards and best practices, such as ISO 27001.

Job Purpose :

1) Information Security Management System : Implement, continuously improve, and maintain the information security program for HPS Payment services

  • Support the CISO by contributing to the development, implementation, and maintenance of information security policies, processes, procedures, and controls to protect HPS Payment Services' assets from internal and external threats.
  • Identify risks, vulnerabilities, and potential threats to HPS Payment Services' assets and implement mitigation and contingency plans to minimize the impact on business operations.
  • Develop and implement information security plans to ensure protection, confidentiality, integrity, and availability of HPS Payment Services' data.
  • Regularly assess the effectiveness of security policies, processes, procedures, and controls and recommend risk treatment actions while ensuring follow-up.
  • Monitor and manage IT risks and non-compliance with contractual requirements signed with clients.
  • Update and review HPS Payment Services' risk register regularly.
  • Ensure appropriate security measures based on process criticality and asset sensitivity, including : Assessing inherent and residual risk levels with asset owners. Guiding risk owners towards suitable options (risk reduction, acceptance, transfer, or rejection). Challenging proposed action plans to ensure realistic and implementable security measures.
  • Prepare and lead IT Risk Committees and ensure proper implementation of Information Security Governance (ISG)

2) Security by Design : Ensuring Security in Projects

  • Guide projects in implementing new security systems or integrating existing systems.
  • Define and implement IT risk management requirements in HPS Payment Services' projects.
  • Ensure the integration of security measures in the project lifecycle.
  • Identify security-related risks, vulnerabilities, and potential threats in projects and define and monitor treatment plans.
  • Ensure compliance with security regulations and standards.
  • Evaluate technological solutions in projects to guarantee compliance with security requirements.
  • Assess and track security performance in projects using key performance indicators (KPIs).
  • 3) Security Assurance : Maintaining Security Certifications

  • Manage certification schedules and anticipate recertification exercises.
  • Coordinate with internal teams to organize regular reviews and collect certification deliverables.
  • Oversee action plans derived from certification exercises.
  • 4) Monitoring Operational Security and Risk Treatment Plans.

  • Track IT security risk and performance indicators.
  • Monitor the operational implementation of information security.
  • Oversee access reviews within the security perimeter.
  • Monitor, investigate, and resolve security incidents while ensuring proper escalation.
  • Follow up on action plans after security incidents.
  • Monitor security clauses in outsourcing contracts.
  • Conduct technology watch and stay updated on emerging threats and security solutions.
  • Work with the operational security team to deploy and maintain security solutions while ensuring compliance with IS security policies.
  • Analyse and assess risks from vulnerability scans and penetration testing results.
  • 5) Permanent Control

  • Support the Level 1 Permanent Control Manager in defining management surveillance controls related to IT security.
  • Coordinate and manage control campaigns to meet deadlines.
  • Depending on the implemented Target Operating Model (TOM), either : Support operational teams in executing controls and challenge their findings, or Perform managerial surveillance controls and document control results.
  • Ensure action plans are well-defined to address risks identified during controls.
  • Produce and track risk and performance indicators from control campaigns.
  • Assist in updating the operational risk mapping related to IT security management.
  • Ensure IT security-related operational risk incidents are escalated to the audit department and track associated reports.
  • Technical Skills :

  • Knowledge of Banking & Financial Services
  • Internal Control & Risk Management
  • IT & Security Functions Knowledge
  • Information Security Management
  • Security Governance & Risk Frameworks
  • IT Development & Architecture
  • IT Risk Management Frameworks ISO 27005, EBIOS, CRISC, NIST, CIS20
  • Managerial Skills :

  • Client Focus
  • Commitment to deadlines
  • Initiative taking
  • Problem anticipation
  • Reporting & monitoring
  • Quality Management
  • Behavioural Skills :

  • Interpersonal skills
  • Initiatives
  • Flexibility
  • Support & assistance
  • Confidentiality, Integrity, Objectivity
  • Analytical & Synthesis skills
  • Rigor & Organization
  • KPIs :

  • Quality of IT Risk & Security Management framework
  • Vulnerability & Security Patch management
  • Client reporting
  • Quality, relevance, and consistency of security reports
  • Compliance with control deadlines
  • Create a job alert for this search

    Information Security Analyst • Pune, Maharashtra, India

    Related jobs
    • Promoted
    • New!
    Architect I - Information Security (IN)

    Architect I - Information Security (IN)

    CencoraPune, Maharashtra, India
    Our team members are at the heart of everything we do.At Cencora, we are united in our responsibility to create healthier futures, and every person here is essential to us being able to deliver on ...Show moreLast updated: 12 hours ago
    • Promoted
    • New!
    AI Technical Information Security Officer (TISO), AVP

    AI Technical Information Security Officer (TISO), AVP

    Deutsche BankHadapsar, Maharashtra, India
    At the “Service, Solutions and AI” Domain, our mission is to revolutionize our Private Bank process landscape by implementing holistic, front-to-back process automation. We are committed to enhancin...Show moreLast updated: 12 hours ago
    • Promoted
    • New!
    TISO - Information Security compliance, VP

    TISO - Information Security compliance, VP

    Deutsche BankPune, Maharashtra, India
    TISO is responsible to enforce Information Security compliance within their area of responsibility in line with the CISO mandate and strategy as well as the bank’s risk appetite.Furthermore, TISOs ...Show moreLast updated: 12 hours ago
    • Promoted
    • New!
    Senior Information Security Project Associate

    Senior Information Security Project Associate

    ZSPune, Maharashtra, India
    As a management consulting and technology firm focused on improving life and how we live it, our most valuable asset is our people. Here you’ll work side-by-side with a powerful collective of thinke...Show moreLast updated: 12 hours ago
    • Promoted
    • New!
    Information Security Engineering Specialist

    Information Security Engineering Specialist

    Global PaymentsPune, Maharashtra, India
    Every day, Global Payments makes it possible for millions of people to move money between buyers and sellers using our payments solutions for credit, debit, prepaid and merchant services.Our worldw...Show moreLast updated: 12 hours ago
    • Promoted
    • New!
    Information Security Engineer

    Information Security Engineer

    Pottery BarnPune, Maharashtra, India
    As a Security Engineer, you will design, build, deploy, and support large, best in class enterprise level information security solutions. You’re excited about this opportunity because you will.Prote...Show moreLast updated: 12 hours ago
    • Promoted
    • New!
    Associate Information Security Threat Analyst

    Associate Information Security Threat Analyst

    Global Payments Asia-Pacific India Private LimitedPune, Maharashtra, India
    Every day, Global Payments makes it possible for millions of people to move money between buyers and sellers using our payments solutions for credit, debit, prepaid and merchant services.Our worldw...Show moreLast updated: 12 hours ago
    • Promoted
    • New!
    Information Security Specialist – Engineer / Tester, AVP

    Information Security Specialist – Engineer / Tester, AVP

    Deutsche BankPune, Maharashtra, India
    As an Information Security Specialist focused on the Microsoft Purview solution, you will play a critical role in safeguarding the bank’s information assets, ensuring compliance, and enabling secur...Show moreLast updated: 12 hours ago
    • Promoted
    • New!
    Technical Information Security Officer (TISO), AVP

    Technical Information Security Officer (TISO), AVP

    Deutsche BankHadapsar, Maharashtra, India
    At the “Service, Solutions and AI” Domain, our mission is to revolutionize our Private Bank process landscape by implementing holistic, front-to-back process automation. We are committed to enhancin...Show moreLast updated: 12 hours ago
    • Promoted
    • New!
    Information Security Senior Specialist – Delivery Lead (CSO CTO - Data Security)

    Information Security Senior Specialist – Delivery Lead (CSO CTO - Data Security)

    Deutsche BankPune, Maharashtra, India
    The Information Security Senior Specialist is a seasoned leader (15+years) in protecting the organization’s digital assets. Operating within the Chief Security Office (CSO), this role is instrumenta...Show moreLast updated: 12 hours ago
    • Promoted
    • New!
    Information security

    Information security

    ScaleneWorksPune, Maharashtra, India
    Works autonomously within defined processes and procedures or methodologies, takes standard decisions and may support the development of solutions to complex problems of a recurring nature.Receives...Show moreLast updated: 12 hours ago
    • Promoted
    • New!
    Specialist Cloud Information Security Engineer

    Specialist Cloud Information Security Engineer

    NICEPune, Maharashtra, India
    At NiCE, we don’t limit our challenges.We set the highest standards and execute beyond them.And if you’re like us, we can offer you the ultimate career opportunity that will light a fire within you...Show moreLast updated: 12 hours ago
    • Promoted
    • New!
    Information Security Analyst (Data Loss Prevention Analyst)

    Information Security Analyst (Data Loss Prevention Analyst)

    NICEPune, Maharashtra, India
    At NiCE, we don’t limit our challenges.We set the highest standards and execute beyond them.And if you’re like us, we can offer you the ultimate career opportunity that will light a fire within you...Show moreLast updated: 12 hours ago
    • Promoted
    • New!
    Associate Information Security Specialist

    Associate Information Security Specialist

    Global Payments Asia-Pacific India Private LimitedPune, Maharashtra, India
    Every day, Global Payments makes it possible for millions of people to move money between buyers and sellers using our payments solutions for credit, debit, prepaid and merchant services.Our worldw...Show moreLast updated: 12 hours ago
    • Promoted
    • New!
    I&A On-boarding Information Security Analyst

    I&A On-boarding Information Security Analyst

    Deutsche BankPune, Maharashtra, India
    As “I&A On-boarding Information Security Analyst” you will be part of Access Lifecycle On-boarding global family which includes access management for application end user recertification On-boardin...Show moreLast updated: 12 hours ago
    • Promoted
    • New!
    Information Security Sr Analyst-Incident Response

    Information Security Sr Analyst-Incident Response

    Black & VeatchPune, Maharashtra, India
    Analyst -Incident Response in the computer security incident response team will be responsible for developing and executing standards, procedures and processes to uncover, resist and recover from s...Show moreLast updated: 12 hours ago
    • Promoted
    • New!
    Specialist-IT & Information Security

    Specialist-IT & Information Security

    Allianz Technology SE India BranchPune, Maharashtra, India
    Specialist-IT & Information Security.Administration of One Identity tool and management of integrated Identities and Services. Responsible for management of incident, problem and change within the I...Show moreLast updated: 12 hours ago
    • Promoted
    • New!
    Information Security Specialist

    Information Security Specialist

    Deutsche BankPune, Maharashtra, India
    Information Security is responsible for preventing IT-based crime, hacking, intentional or inadvertent modification, disclosure, or destruction to the organization's information systems and IT asse...Show moreLast updated: 12 hours ago